Re: Cable broadband, wired router and iLamp

On 2008-09-24 10:52:18 +0100, Jaimie Vandenbergh <jaimie@xxxxxxxxxxxxxxxxxxxxx> said:

On Wed, 24 Sep 2008 10:41:46 +0100, Chris Ridd <chrisridd@xxxxxxx>
wrote:

On 2008-09-23 21:41:30 +0100, me9@xxxxxxxxxxx (Bella Jones) said:

Chris Ridd <chrisridd@xxxxxxx> wrote:

That's the lobotomy setting. Use Leopard's "Set access for specific
services and applications" instead.

Ah, but which ones? If I do that setting, will it keep asking me when I
use a different app?

Apple apps will automatically go into the list. Non-Apple apps will
cause a prompt the first time they try listening to the network, and
clicking allow/deny at that point will add them to the list as
"allow/deny".

You'll only get asked again if the app changes and the app's author
hasn't digitally signed it.

Or just every week or so, in the case of Office 2008. WTF is Excel
doing asking permission to listen to the 'Net anyway? Pfui.

That's their copy protection scheme, innit? At least in 2004 they used to send a packet around the LAN saying if a particular serial number was being run, and obviously *have* to listen out for those announcements...

Out of interest, the problems I had a month or so back with not getting DHCP requests was due to the application firewall blocking configd. No matter what I did with the application firewall settings (deleted the plist, reset it from the installed copy, twiddled the list using System Preferences) the problem always reappeared. Only disabling the firewall altogether (eek!) worked.

The real solution seems to have been to zap the machine's Kerberos settings (who knew each machine was a KDC?) and recreate them. I discovered that by googling, and ended up at <http://support.apple.com/kb/TS1245>.

That's worth a try IMHO if you're having issues with recalcitrant apps and the app firewall.

Cheers,

Chris

.

Relevant Pages

  • Re: Socket security question
    ... allows local processes owned by the same user ... who owns the (the process that created the listening) socket ... a user runs this app and this app ... I assume if the socket is listening to 127.0.0.1 ...
    (microsoft.public.win32.programmer.networks)
  • Re: Kerio and .NET Applications
    ... >> So is it possible to make it ask before an app opens a listening ... > I don't think there's anything you can do to prevent an app or program ... But it's kind of funny how PFW solutions with App Control ... Keep in mind that .Net is a Standard like JAVA is a Standard and MS ...
    (comp.security.firewalls)
  • Re: Unable to Abort a listening thread
    ... > As i posted below i have an app with a separate thread listening for a ... > tcp client connection. ... > void ListenerThreadFunction() ... i'm trying to stop the thread if the app is closing: ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: How to do Async TCP Listener?
    ... the listner from my app, but the app is locked up while it's listening. ... If so, your client ... >> Public Sub DoAcceptTcpClientCallback ...
    (microsoft.public.dotnet.languages.vb)
  • Re: SP2 Shouldnt allow a PC AnyWhere conenction should it ? YES I TOP POST :-)
    ... >I am certain that they did not answer the popup allowing the app' to ... >communicate through the firewall. ... the firewall IS still enabled. ... Have you checked the allowed ports list in the firewall settings? ...
    (comp.security.firewalls)
Loading